Date: Tue, 16 Apr 2019 04:13:09 +0000 From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 236819] [tcpdump] capsicum-related changes broke reading IPsec ESP decryption keys from a file Message-ID: <bug-236819-7501-5hgccerVoO@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-236819-7501@https.bugs.freebsd.org/bugzilla/> References: <bug-236819-7501@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=236819 --- Comment #5 from commit-hook@freebsd.org --- A commit references this bug: Author: oshogbo Date: Tue Apr 16 04:12:42 UTC 2019 New revision: 346263 URL: https://svnweb.freebsd.org/changeset/base/346263 Log: tcpdump: disable Capsicum if -E option is provided. The -E is used to provide a secret for decrypting IPsec. The secret may be provided through command line or as the file. The problem is that tcpdump doesn't support yet opening files in capability mode and the file may contain a list of the files to open. As a workaround, for now, let's just disable capsicum if the -E the option is provided. PR: 236819 MFC after: 2 weeks Changes: head/contrib/tcpdump/tcpdump.c -- You are receiving this mail because: You are the assignee for the bug.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-236819-7501-5hgccerVoO>